If you haven't heard, Dave Kennedy is releasing SET 2.1 at DerbyCon. Look at his site for a few details http://www.secmaniac.com/

I'm most excited about:

I’ve rewritten the Java Applet to incorporate this vector which allows payloads to be shot straight into memory without ever touching disk. The implications of this are huge as anti-virus should no longer trigger on Metasploit-based payloads within SET or the Java Applet attack.

The Java applet attack used to work perfectly but most AV's have a sig for it since it was an actual file that resided on the disk....cant wait to see this!